Collaborative and automated solutions for investigating cybersecurity incidents

The current context

Why this solution?

Once a cyberattack is detected, traditional digital investigation tools are time consuming and require technical knowledge that is in short supply. It can take weeks or even months for a company to fully understand the scope of a cyberattack and its extent.

200 days

On average to understand the scope of a cyberattack

4.24M €

The average cost of a
cyberattack

Missing profiles in cybersecurity in the world

Make the daily life of your experts easier

Your benefits

Defants vSIRT is designed to be interoperable with your existing solutions and brings essential automation to your experts and assists them in their investigation, with automatic scores standardized by the MITRE ATT&CK framework.

Stop time-consuming tasks for your experts
Focus on high-value tasks
Collaborate in real time on all your missions

Semantic Investigation

How it works?

Traditional digital investigation tools consist in producing a multitude of text files (csv, excel, etc.). We have developed an innovative technology to propose a semantic investigation tool. Experts can then conduct their investigation in the form of a knowledge graph, to explore and discover complex attack paths.

A DFIR SaaS platform to serve your data

Defants vSIRT automates and pushes the limits of traditional investigation software.

Discover our solution

Main features

Automatic analysis and scoring of data from event logs, Live Response, etc.
Automatic triage of data from existing Indicators of Compromise.
Semantic detections to identify the tactics, techniques and procedures based on the MITRE ATT&CK framework.
Optimize your threat hunting by pivoting or on identical or similar technical elements.
Assistance in generating reports and attack timelines.